[Servercert-wg] Ballot SC10 – Establishing the Network Security Subcommittee of the SCWG

Dimitris Zacharopoulos jimmy at it.auth.gr
Tue Oct 2 11:11:45 MST 2018


Harica votes "yes" to ballot SC10.

Dimitris.

On 20/9/2018 7:02 μμ, Dimitris Zacharopoulos via Servercert-wg wrote:
>
>
>       *Purpose of Ballot*
>
> The Network Security Working Group of the CA/Browser Forum expired on 
> June 19, 2018 under the terms of Ballot 203 which established the 
> Working Group. The Server Certificate Working Group wishes to 
> establish a Network Security Subcommittee pursuant to Bylaws 5.3.1(e).
>
> The following motion has been proposed by Dimitris Zacharopoulos of 
> HARICA and endorsed by Tim Hollebeek of DigiCert and Wayne Thayer of 
> Mozilla.
>
> *
> *
>
> *--- MOTION BEGINS ---*
>
> The Server Certificate Working Group hereby establishes the *Network 
> Security Subcommittee* as an official Subcommittee.
>
> *1. Mission: *To improve security policies and practices for 
> Certificate Management Systems encoded in the guidelines maintained by 
> the SCWG.
>
> *
> 2. End Date: *This Subcommittee shall continue until it is dissolved 
> by a vote of the SCWG
>
> *3. Deliverables: *The Network Security Subcommittee shall propose 
> ballots to the SCWG to improve the minimal security standards within 
> the mission defined above This includes modifying the existing Network 
> and Certificate System Security Requirements (NCSSR) or to create new 
> requirements, guidelines, or best practices. Among other activities, 
> the Network Security Subcommittee shall perform security analysis on 
> typical CA Management Systems offering options to the Server 
> Certificate Working Group for establishing minimal security standards. 
> Risk analysis will also be used to provide a better understanding of 
> threats and vulnerabilities in Certificate Management Systems. This 
> process can be used to provide better reasoning and justification of 
> existing or future security guidelines.
>
> *4. Participation: *Any member of the SCWG is eligible and may declare 
> their participation in theNetwork Security Subcommittee by requesting 
> to be added to the mailing list.
>
> *5. Chair: *Ben Wilson**shall be the initial Chair of the Network 
> Security Subcommittee.The Subcommittee may change its Chair from time 
> to time by consensus of the Members participating in the Subcommittee 
> or by voting method chosen by the Members by consensus.
>
> *6. Communication: *Subcommittee communications and documents shall be 
> posted on mailing-lists where the mail-archives are publicly 
> accessible, and the Subcommittee shall publish minutes of its meetings.
>
> *7. Effect of SCWG Charter or Forum Bylaws Amendment for 
> Subcommittees: *In the event the SCWG Charter or the Forum Bylaws is 
> amended to add general rules governing Chartered Working Group 
> Subcommittees and how they operate (“General Rules”), the provisions 
> of the General Rules shall take precedence over this charter.
>
> *--- MOTION ENDS ---*
>
> The procedure for approval of this ballot is as follows:
>
> *Ballot SC10 – Establishing the Network Security Subcommittee of the 
> SCWG* 	
>
> *Start time (22:00 UTC)*
>
> 	
>
> *End time (22:00 UTC)*
>
> Discussion (7 days)
>
> 	
>
> 20 September 2018
>
> 	
>
> 27 September 2018
>
> Vote for approval (7 days)
>
> 	
>
> 27 September 2018
>
> 	
>
> 4 October 2018
>
>
>       Additional Information (not part of Ballot)
>
> *Bylaws v1.9*
>
>
>         *5.3.1 Formation of Chartered Working Groups*
>
> (e) CWGs may establish any number of subcommittees within its own 
> Working Group to address any of such CWG’s business (each, a 
> “Subcommittee”). A CWG-created Subcommittee needs to be approved by 
> the CWG itself according to the approval process set forth in the CWG 
> charter, but approval of the Forum is not necessary. Subcommittees 
> must exist under an approved CWG.
>
>
> *Ballot 203: Formation of Network Security Working Group (v2)*
>
> Purpose of Ballot: To form a Network Security Working Group to 
> re-evaluate the CAB Forum's Network Security Guidelines.
>
> The following motion has been proposed by Gervase Markham of Mozilla 
> and endorsed by Jeremy Rowley of DigiCert and Moudrick Dadashov of SSC:
>
> -- MOTION BEGINS –
>
> In accordance with Section 5.3 of the CA/B Forum Bylaws, the 
> chartering of a new Working Group requires a ballot. This ballot 
> charters the Network Security Working Group.
>
> The CAB Forum's Network Security Guidelines were adopted in August 
> 2012 but have not been updated since. Significant doubts have been 
> raised as to their fitness for purpose in 2017. Therefore, the Working 
> Group’s charter will be as follows:
>
> Scope
>
> 1. Consider options for revising, replacing or scrapping the Network 
> Security Guidelines.
>
> Deliverables
>
> 1. A report with one or more proposals for the future of the Network 
> Security Guidelines.
>
> 2. For proposals involving replacement, details of the availability 
> and applicability of the proposed alternative, and what modifications 
> if any would be needed to it in order to make it suitable for use.
>
> 3. For proposals involving revision, details of the revisions that are 
> deemed necessary and how the document will be kept current in the future.
>
> 4. For proposals involving scrapping, an explanation of why this is 
> preferable to either of the other two options.
>
> 5. If there are multiple proposals, optionally a recommendation as to 
> which one to pursue and an associated timeline.
>
> 6. A form of ballot or ballots to implement any recommendations.
>
> Expiry
>
> The Working Group shall expire once the deliverables have been 
> completed, or on 2018-06-19, whichever happens first. The expiry date 
> given above shall be automatically postponed by 1 year on 2018-05-19 
> ("postponement date") and each anniversary of the postponement date 
> thereafter unless three or more members separately or jointly request 
> on the Public Mail List, within one month prior to a particular 
> postponement date, that expiry of this Working Group not be postponed 
> in that instance.
>
> -- MOTION ENDS --
>
>
>
> _______________________________________________
> Servercert-wg mailing list
> Servercert-wg at cabforum.org
> http://cabforum.org/mailman/listinfo/servercert-wg

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://cabforum.org/pipermail/servercert-wg/attachments/20181002/27209a52/attachment-0001.html>


More information about the Servercert-wg mailing list